21 lines
409 B
Nix
21 lines
409 B
Nix
{ ... }:
|
|
|
|
{
|
|
services = {
|
|
openssh = {
|
|
enable = true;
|
|
openFirewall = true;
|
|
startWhenNeeded = false;
|
|
settings = {
|
|
PermitEmptyPasswords = "no";
|
|
PermitRootLogin = "prohibit-password";
|
|
PasswordAuthentication = false;
|
|
KbdInteractiveAuthentication = false;
|
|
};
|
|
};
|
|
sshguard = {
|
|
enable = false;
|
|
services = [ "sshd" ];
|
|
};
|
|
};
|
|
}
|